CLAIMS 



What is claimed is: 

1. A method for preventing imauthorized access by a requestor to data sent via computer 

networks, comprising: 

a) requesting, from a requestii^ computeo:, access to data from a first server, 

at said fibrst server: 

b) determixiing if said request is a valid request; 

c) receiving a ticket &om a ticket sei-ver; 
if said request is a valid request: 

d) providing said ticket identifying said requestor to a second server wherein 

said data is stored; 

e) directing said requesting computer to reqxiest access to said data from said 

second server; 

at said second server: 

f) receiving said request from said requesting computer; 

g) verifyii^ said ticket as identifying said requestor; and 

h) sending said data to said requesting computer in response to said request. 

2. A method according to claim 1 wherein said requesting computer is a client computer. 

3. A method according to claim 1 wherein said second server is either of a proxy server 
and a cache server. 

4. A method according to claim ) wherein said data is encrypted and wherein said 
providing step d) further comprises said first server providing a decryption key to said second server 
for decrypting said data, 
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5. A method according to claim 1 wherein said data is encrypted and wherein providing 
step d) flirther comprises said ticket server providing a decryption key to said second server for 
decrypting said data. 

6. A method according to claim 1 wherein said providing step d) further comprises 
providing said ticket to said second server by way of said client computer. 



7. A method according to claim 6 and further comprising said client computer locating 

said second server using a search engine. \ 



8. A method according to claim 1 wherein said verifying step g) furtlier comprises: 

i) sending said ticket to said ticket server for validation; and 
j) receiving a communication from said ticket server validating said ticket 



9 A method according to claim 1 wherein said sending step h) fiirther comprises 

embedding a marking into said data prior to sending said data to said client computer. 



1 0. A method according to claim 9 wherein said marking is a digital watermark. 



A method according to claim 9 wherein said marking is a personalized marking for said 



requestor. 

12. A method for preventing unauthorized transfer of data sent via computer networks, the 

method comprising the st^s of: 

instructing a first server to send content to a second server; 
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notifying a tickets^er of said instructions; 
validating said instructions at said ticket server, 
if said instructions are valid: 

notifying either of said servers that said instructions are valid; 
sending said content from said first server to said second server; 
if said instructions are invalid: 

notifying either of said servers that said instructions are invalid; 
performing any of: 

ignoring said instmctions; 
corrupting said content; and 
discarding said content. 

13. A method according to claim 12 and further comprising the steps of: 

embedding a marking into said data; 

checking the validity of said marlcing at either of said servers; and 
if said marldng is invalid, performitig any of: 

ignoring said instructions; 

corrupting said content; and 

discarding said content 



14. A method according to claim 12 wherein said validating step comprises validating said 
instructions in accordance with a policy. 

15. A method according to claim 1 3 wherein said embedding step comprises embedding any 
of an identification unique to said first server, an identification unique to said second server, routing 
iitforraation, and rule-based information. 
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1 6. A method according to claim 12 and further comprising: 

said first server receiving an encryption key from said ticket server; and 
encrypting said content using said encryption key. 



17. A method according to claim 16 and further comprising: 

said second server receiving a decryption key from either of said first server and 

ticket server; and 

decrypting said content using said decryption key. 
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